In re Application of De Boursetty et al. 
Application No. 10/539,205 

Response to Final Office Action of August 4, 2008 

Amendments to the Claims 

This listing of claims will replace all prior versions and listings of claims in the 
application. 

Claim 1 (previously presented) A method of communication between a first unit and a second 
unit via a telecommunications network, wherein the first unit comprises: 

applications belonging respectively to a first family and a second family having a priori a 
lower degree of confidence than the first family; and 

network access resources enabling the applications of the first and second family to 
communicate through the telecommunications network, the network access resources 
including a control layer, 

the method comprising: 

generating at least one request originating from an application of the second family for 
transmission over the network to the second unit; and 

processing said request in the control layer to force the request as transmitted over the 
network to include a mark associated with the second family of applications. 

Claim 2 (cancelled) 

Claim 3 (previously presented): The method according to claim 1, wherein the processing of 
said request comprises ensuring that said mark includes an indication of the nature and/or 
origin of said application of the second family. 

Claim 4 (previously presented): The method according to claim 3, wherein said application of 
the second family being signed, the mark included in the requests that originated therefrom is 
forced to include data relating to the certification of the signature. 
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Claim 5 (previously presented): The method according to claim 3, wherein the said 
application of the second family having been downloaded via the network from a download 
address, the mark included in the requests that originated therefrom is forced to include data 
relating to the download address of the application. 

Claim 6 (previously presented): A method of communication between a first unit and a 
second unit via a telecommunications network, wherein the first unit comprises: 

applications belonging respectively to a first family and to a second family having a priori 
a lower degree of confidence than the first family; and 

network access resources enabling the applications of the first and second family to 
communicate through the telecommunications network, the network access resources 
including a control layer, 

the method comprising: 

generating at least one first request originating from an application of the first family; 

transmitting the first request over the network, the first request as transmitted including a 
mark associated with the first family; 

generating at least one second request originating from an application of the second family 
for transmission over the network to the second unit; and 

examining said second request in the control layer to force the second request as 
transmitted over the network not to include said mark. 

Claim 7 (previously presented): The method according to claim 6 wherein the second unit 
examines whether the mark is present in a request received over the network from the first 
unit, to assess a degree of confidence for said request. 
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Claim 8 (previously presented): The method according the claim 7, wherein, when the mark 
is present in said request, the second unit also examines data included in said mark, to assess 
a degree of confidence for said request. 

Claim 9 (previously presented): The method according to claim 8, wherein said data 
examined by the second unit comprises data relating to the certification of a signature of the 
application from which the request originated. 

Claim 10 (previously presented): The method according to claim 8, wherein said data 
examined by the second unit comprise data relating to a download address of the application 
from which the request originated. 

Claim 1 1 (previously presented): The method according to claim 6, wherein the requests 
comprise HTTP requests, and the mark is inserted in the headers of the HTTP requests. 

Claim 12 (previously presented): The method according to claim 1, wherein the network 
access resources comprise a virtual machine and the control layer comprises software 
belonging to said virtual machine, the applications of the second family being able to access 
the network only via the virtual machine and said software. 

Claim 13 (previously presented): The method according to claim 12, wherein the virtual 
machine is a Java virtual machine. 

Claim 14 (previously presented): A communication terminal, comprising: 

applications belonging respectively to a first family and a second family having a priori a 
lower degree of confidence than the first family; and 
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network access resources enabling the applications of the first and second family to 

communicate through a telecommunications network with at least one remote unit, the 
network access resources including a control layer, 

wherein the control layer is adapted to examine a request originating from an application 
of the second family for transmission over the network to the remote unit so that the 
request as transmitted over the network includes a mark associated with the second 
family of applications. 

Claim 15 (previously presented): A communication terminal, comprising: 

applications belonging respectively to a first family and a second family having a priori a 
lower degree of confidence than the first family; and 

network access resources enabling the applications of the first and second family to 

communicate through a telecommunications network with at least one remote unit, the 
network access resources including a control layer, 

wherein the control layer is adapted to examine a request originating from an application 
of the second family for transmission over the network to the remote unit so that the 
request as transmitted over the network does not include a mark associated with the 
first family, said mark being included in at least some requests transmitted over the 
network and originating from applications of the first family. 

Claim 16 (previously presented): The method according to claim 1, wherein each request 
originating from an application of the second family, transmitted over the network to the 
second unit, is forced to include a mark associated with the second family of applications. 

Claim 17 (previously presented): The method according to claim 6, wherein each request 
originating from an application of the second family, transmitted over the network to the 
second unit, is forced to exclude a mark associated with the first family. 
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Claim 18 (previously presented): The method according to claim 6, wherein the network 
access resources comprise a virtual machine and the control layer comprises software 
belonging to said virtual machine, the applications of the second family being able to access 
the network only via the virtual machine and said software. 

Claim 19 (previously presented): The method according to claim 18, wherein the virtual 
machine is a Java virtual machine. 

Claim 20 (new) The method according to claim 1, wherein a communications protocol is 
based on TCP/IP and wherein the second family applications do not have access to the 
network by connecting to a protocol layer lower than HTTP in order to ensure security of the 
mark. 
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